$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133302e302f32342d3234203d3e20313336363231.roa File: 3130332e3233382e3133302e302f32342d3234203d3e20313336363231.roa (raw, json) Hash identifier: 8igxHKxo2njqbR2D8BiOevPTCdiGc26mhB2WmzLUUOQ= Subject key identifier: 95:79:B5:4C:83:EF:B2:7D:A8:1C:FE:2C:89:06:66:DA:95:CB:8F:0F Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Certificate serial: 650C9ED1B0F0BD2A3CC46DEC07E0ECB681B97233 Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133302e302f32342d3234203d3e20313336363231.roa Signing time: Thu 29 May 2025 14:50:24 +0000 ROA not before: Thu 29 May 2025 14:45:24 +0000 ROA not after: Thu 28 May 2026 14:50:24 +0000 asID: 136621 IP address blocks: 103.238.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Jun 2025 13:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:0c:9e:d1:b0:f0:bd:2a:3c:c4:6d:ec:07:e0:ec:b6:81:b9:72:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A61310000, serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800 Validity Not Before: May 29 14:45:24 2025 GMT Not After : May 28 14:50:24 2026 GMT Subject: CN=9579B54C83EFB27DA81CFE2C890666DA95CB8F0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1f:f9:8d:04:38:f1:f9:c3:18:5a:a1:23:35: e7:2c:a4:c5:0e:52:f9:65:ce:b3:bd:d8:8d:ce:02: 32:6f:02:26:82:c8:99:fa:4e:a0:1c:b8:98:d4:86: b0:5e:ad:d7:3d:a7:cf:b5:00:3e:ff:b4:9a:97:72: 19:d2:ca:d8:f4:27:f1:24:4f:8f:44:0c:4a:2e:09: 47:7f:93:f8:ae:bc:a9:a2:49:7a:3e:37:66:44:0b: 03:16:b5:50:b0:ba:c6:7a:af:60:f3:ff:36:2c:7f: aa:d4:80:71:6a:8f:dc:c6:be:30:b7:fc:d5:e6:cd: ef:32:41:61:db:51:d8:73:99:05:5e:d1:4c:8f:bd: 1c:e9:5b:19:c6:5f:70:dd:73:e7:99:2e:a9:f3:63: 07:fa:5c:4a:2b:8f:10:18:09:75:e3:f5:6b:cb:39: 93:35:f3:0f:e8:1d:47:7f:64:48:b3:d0:b5:40:6f: 5b:39:0c:c6:31:7d:35:67:ca:00:3f:6c:c6:82:7f: 77:21:ab:be:35:cd:28:fa:5e:e3:d0:da:00:f5:42: 1d:82:8c:4e:c2:d5:c3:49:de:b4:6b:51:ae:ee:05: a4:ec:97:b9:65:f9:74:ab:87:68:82:a2:8d:11:a4: 79:a7:7f:92:3c:97:08:5a:b8:ac:92:98:80:9d:d7: 5f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:79:B5:4C:83:EF:B2:7D:A8:1C:FE:2C:89:06:66:DA:95:CB:8F:0F X509v3 Authority Key Identifier: keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133302e302f32342d3234203d3e20313336363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.130.0/24 Signature Algorithm: sha256WithRSAEncryption 88:2e:f7:07:0d:39:09:94:07:8f:b6:c5:06:e7:56:93:90:78: 8e:8d:09:a7:7d:17:18:44:98:5d:1e:4d:c8:c6:ae:2d:eb:e2: bf:89:89:98:63:56:f5:c6:a5:8e:ee:ed:39:34:2a:f3:2d:31: b2:65:8d:72:f0:6d:24:74:7a:96:e0:f6:ee:c2:95:35:b5:ed: 22:9e:bb:68:aa:ae:5a:1d:af:17:c1:3f:52:05:60:84:28:e6: a6:be:d8:9f:52:1c:85:e6:34:e2:d6:44:4c:2c:8c:5d:86:64: 0f:bb:22:02:c2:2e:20:e6:43:9e:3a:3e:26:d3:c0:99:ec:8f: 9d:b3:dc:11:74:70:ab:ad:51:ba:7b:04:cf:cd:af:c9:1f:aa: cb:31:1f:1d:3e:70:a6:90:25:01:7b:a6:8c:0a:2a:d9:be:5a: 0e:29:86:97:4a:50:00:4c:5d:44:06:d3:53:4f:d5:4f:0f:fb: 1a:d6:40:51:c7:2b:59:c6:9a:09:6b:5c:e6:33:04:ad:17:7b: fd:8f:5e:4a:74:8a:00:fc:69:35:21:3b:2e:36:f0:11:16:ef: ec:1b:d2:35:8b:17:2f:9a:aa:1f:d2:5b:f2:9b:48:97:47:fb: 8a:4d:a6:81:97:72:a8:45:45:2b:cb:85:de:34:cc:0f:43:0b: 21:d5:65:61 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUZQye0bDwvSo8xG3sB+DstoG5cjMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4 NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI1MDUyOTE0NDUyNFoX DTI2MDUyODE0NTAyNFowMzExMC8GA1UEAxMoOTU3OUI1NEM4M0VGQjI3REE4MUNG RTJDODkwNjY2REE5NUNCOEYwRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK8f+Y0EOPH5wxhaoSM15yykxQ5S+WXOs73Yjc4CMm8CJoLImfpOoBy4mNSG sF6t1z2nz7UAPv+0mpdyGdLK2PQn8SRPj0QMSi4JR3+T+K68qaJJej43ZkQLAxa1 ULC6xnqvYPP/Nix/qtSAcWqP3Ma+MLf81ebN7zJBYdtR2HOZBV7RTI+9HOlbGcZf cN1z55kuqfNjB/pcSiuPEBgJdeP1a8s5kzXzD+gdR39kSLPQtUBvWzkMxjF9NWfK AD9sxoJ/dyGrvjXNKPpe49DaAPVCHYKMTsLVw0netGtRru4FpOyXuWX5dKuHaIKi jRGkead/kjyXCFq4rJKYgJ3XX30CAwEAAaOCAhcwggITMB0GA1UdDgQWBBSVebVM g++yfagc/iyJBmbalcuPDzAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64 ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4 QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2 dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGRBggrBgEFBQcBCwSBhDCBgTB/BggrBgEF BQcwC4ZzcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFB NjEzMTAwMDAvMC8zMTMwMzMyZTMyMzMzODJlMzEzMzMwMmUzMDJmMzIzNDJkMzIz NDIwM2QzZTIwMzEzMzM2MzYzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+6CMA0GCSqGSIb3DQEB CwUAA4IBAQCILvcHDTkJlAePtsUG51aTkHiOjQmnfRcYRJhdHk3Ixq4t6+K/iYmY Y1b1xqWO7u05NCrzLTGyZY1y8G0kdHqW4PbuwpU1te0inrtoqq5aHa8XwT9SBWCE KOamvtifUhyF5jTi1kRMLIxdhmQPuyICwi4g5kOeOj4m08CZ7I+ds9wRdHCrrVG6 ewTPza/JH6rLMR8dPnCmkCUBe6aMCirZvloOKYaXSlAATF1EBtNTT9VPD/sa1kBR xytZxpoJa1zmMwStF3v9j15KdIoA/Gk1ITsuNvARFu/sG9I1ixcvmqof0lvym0iX R/uKTaaBl3KoRUUry4XeNMwPQwsh1WVh -----END CERTIFICATE-----Generated at Mon Jun 2 07:02:41 2025 by rpki-client